rhodecode-enterprise-ce Commit - r893:b7927ff7

api: Add an entry for pr shadow repositories to api functions.

Martin Bornhold -

r893:b7927ff7 default

parent child

Collapse all files

The requested changes are too big and content was truncated. Show full diff

rhodecode/api/views/pull_request_api.py

0 +6 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2011-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             import logging
             from rhodecode.api import jsonrpc_method, JSONRPCError
             from rhodecode.api.utils import (
                 has_superadmin_permission, Optional, OAttr, get_repo_or_error,
                 get_pull_request_or_error, get_commit_or_error, get_user_or_error,
                 has_repo_permissions, resolve_ref_or_error)
             from rhodecode.lib.auth import (HasRepoPermissionAnyApi)
             from rhodecode.lib.base import vcs_operation_context
             from rhodecode.lib.utils2 import str2bool
             from rhodecode.model.changeset_status import ChangesetStatusModel
             from rhodecode.model.comment import ChangesetCommentsModel
             from rhodecode.model.db import Session, ChangesetStatus
             from rhodecode.model.pull_request import PullRequestModel
             from rhodecode.model.settings import SettingsModel
             log = logging.getLogger(__name__)
             @jsonrpc_method()
             def get_pull_request(request, apiuser, repoid, pullrequestid):
                 """
                 Get a pull request based on the given ID.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: Repository name or repository ID from where the pull
                     request was opened.
                 :type repoid: str or int
                 :param pullrequestid: ID of the requested pull request.
                 :type pullrequestid: int
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     {
                         "pull_request_id":   "<pull_request_id>",
                         "url":               "<url>",
                         "title":             "<title>",
                         "description":       "<description>",
                         "status" :           "<status>",
                         "created_on":        "<date_time_created>",
                         "updated_on":        "<date_time_updated>",
                         "commit_ids":        [
                                                  ...
                                                  "<commit_id>",
                                                  "<commit_id>",
                                                  ...
                                              ],
                         "review_status":    "<review_status>",
                         "mergeable":         {
                                                  "status":  "<bool>",
                                                  "message": "<message>",
                                              },
                         "source":            {
                                                  "clone_url":     "<clone_url>",
                                                  "repository":    "<repository_name>",
                                                  "reference":
                                                  {
                                                      "name":      "<name>",
                                                      "type":      "<type>",
                                                      "commit_id": "<commit_id>",
                                                  }
                                              },
                         "target":            {
                                                  "clone_url":   "<clone_url>",
                                                  "repository":    "<repository_name>",
                                                  "reference":
                                                  {
                                                      "name":      "<name>",
                                                      "type":      "<type>",
                                                      "commit_id": "<commit_id>",
                                                  }
                                              },
+                        "shadow":            {
+                                                 "clone_url":   "<clone_url>",
+                                             },
                        "author":             <user_obj>,
                        "reviewers":          [
                                                  ...
                                                  {
                                                     "user":          "<user_obj>",
                                                     "review_status": "<review_status>",
                                                  }
                                                  ...
                                              ]
                     },
                    "error": null
                 """
                 get_repo_or_error(repoid)
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_read(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 data = pull_request.get_api_data()
                 return data
             @jsonrpc_method()
             def get_pull_requests(request, apiuser, repoid, status=Optional('new')):
                 """
                 Get all pull requests from the repository specified in `repoid`.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: Repository name or repository ID.
                 :type repoid: str or int
                 :param status: Only return pull requests with the specified status.
                     Valid options are.
                     * ``new`` (default)
                     * ``open``
                     * ``closed``
                 :type status: str
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     [
                         ...
                         {
                             "pull_request_id":   "<pull_request_id>",
                             "url":               "<url>",
                             "title" :            "<title>",
                             "description":       "<description>",
                             "status":            "<status>",
                             "created_on":        "<date_time_created>",
                             "updated_on":        "<date_time_updated>",
                             "commit_ids":        [
                                                      ...
                                                      "<commit_id>",
                                                      "<commit_id>",
                                                      ...
                                                  ],
                             "review_status":    "<review_status>",
                             "mergeable":         {
                                                     "status":      "<bool>",
                                                     "message:      "<message>",
                                                  },
                             "source":            {
                                                      "clone_url":     "<clone_url>",
                                                      "reference":
                                                      {
                                                          "name":      "<name>",
                                                          "type":      "<type>",
                                                          "commit_id": "<commit_id>",
                                                      }
                                                  },
                             "target":            {
                                                      "clone_url":   "<clone_url>",
                                                      "reference":
                                                      {
                                                          "name":      "<name>",
                                                          "type":      "<type>",
                                                          "commit_id": "<commit_id>",
                                                      }
                                                  },
+                            "shadow":            {
+                                                     "clone_url":   "<clone_url>",
+                                                 },
                            "author":             <user_obj>,
                            "reviewers":          [
                                                      ...
                                                      {
                                                         "user":          "<user_obj>",
                                                         "review_status": "<review_status>",
                                                      }
                                                      ...
                                                  ]
                         }
                         ...
                     ],
                   "error": null
                 """
                 repo = get_repo_or_error(repoid)
                 if not has_superadmin_permission(apiuser):
                     _perms = (
                         'repository.admin', 'repository.write', 'repository.read',)
                     has_repo_permissions(apiuser, repoid, repo, _perms)
                 status = Optional.extract(status)
                 pull_requests = PullRequestModel().get_all(repo, statuses=[status])
                 data = [pr.get_api_data() for pr in pull_requests]
                 return data
             @jsonrpc_method()
             def merge_pull_request(request, apiuser, repoid, pullrequestid,
                                    userid=Optional(OAttr('apiuser'))):
                 """
                 Merge the pull request specified by `pullrequestid` into its target
                 repository.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: The Repository name or repository ID of the
                     target repository to which the |pr| is to be merged.
                 :type repoid: str or int
                 :param pullrequestid: ID of the pull request which shall be merged.
                 :type pullrequestid: int
                 :param userid: Merge the pull request as this user.
                 :type userid: Optional(str or int)
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     {
                         "executed":         "<bool>",
                         "failure_reason":   "<int>",
                         "merge_commit_id":  "<merge_commit_id>",
                         "possible":         "<bool>"
                     },
                   "error": null
                 """
                 repo = get_repo_or_error(repoid)
                 if not isinstance(userid, Optional):
                     if (has_superadmin_permission(apiuser) or
                             HasRepoPermissionAnyApi('repository.admin')(
                                 user=apiuser, repo_name=repo.repo_name)):
                         apiuser = get_user_or_error(userid)
                     else:
                         raise JSONRPCError('userid is not the same as your user')
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_merge(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 if pull_request.is_closed():
                     raise JSONRPCError(
                         'pull request `%s` merge failed, pull request is closed' % (
                             pullrequestid,))
                 target_repo = pull_request.target_repo
                 extras = vcs_operation_context(
                     request.environ, repo_name=target_repo.repo_name,
                     username=apiuser.username, action='push',
                     scm=target_repo.repo_type)
                 data = PullRequestModel().merge(pull_request, apiuser, extras=extras)
                 if data.executed:
                     PullRequestModel().close_pull_request(
                         pull_request.pull_request_id, apiuser)
                     Session().commit()
                 return data
             @jsonrpc_method()
             def close_pull_request(request, apiuser, repoid, pullrequestid,
                                    userid=Optional(OAttr('apiuser'))):
                 """
                 Close the pull request specified by `pullrequestid`.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: Repository name or repository ID to which the pull
                     request belongs.
                 :type repoid: str or int
                 :param pullrequestid: ID of the pull request to be closed.
                 :type pullrequestid: int
                 :param userid: Close the pull request as this user.
                 :type userid: Optional(str or int)
                 Example output:
                 .. code-block:: bash
                   "id": <id_given_in_input>,
                   "result":
                     {
                         "pull_request_id":  "<int>",
                         "closed":           "<bool>"
                     },
                   "error": null
                 """
                 repo = get_repo_or_error(repoid)
                 if not isinstance(userid, Optional):
                     if (has_superadmin_permission(apiuser) or
                             HasRepoPermissionAnyApi('repository.admin')(
                                 user=apiuser, repo_name=repo.repo_name)):
                         apiuser = get_user_or_error(userid)
                     else:
                         raise JSONRPCError('userid is not the same as your user')
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_update(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError(
                         'pull request `%s` close failed, no permission to close.' % (
                             pullrequestid,))
                 if pull_request.is_closed():
                     raise JSONRPCError(
                         'pull request `%s` is already closed' % (pullrequestid,))
                 PullRequestModel().close_pull_request(
                     pull_request.pull_request_id, apiuser)
                 Session().commit()
                 data = {
                     'pull_request_id': pull_request.pull_request_id,
                     'closed': True,
                 }
                 return data
             @jsonrpc_method()
             def comment_pull_request(request, apiuser, repoid, pullrequestid,
                                      message=Optional(None), status=Optional(None),
                                      userid=Optional(OAttr('apiuser'))):
                 """
                 Comment on the pull request specified with the `pullrequestid`,
                 in the |repo| specified by the `repoid`, and optionally change the
                 review status.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: The repository name or repository ID.
                 :type repoid: str or int
                 :param pullrequestid: The pull request ID.
                 :type pullrequestid: int
                 :param message: The text content of the comment.
                 :type message: str
                 :param status: (**Optional**) Set the approval status of the pull
                     request. Valid options are:
                     * not_reviewed
                     * approved
                     * rejected
                     * under_review
                 :type status: str
                 :param userid: Comment on the pull request as this user
                 :type userid: Optional(str or int)
                 Example output:
                 .. code-block:: bash
                   id : <id_given_in_input>
                   result :
                     {
                         "pull_request_id":  "<Integer>",
                         "comment_id":       "<Integer>"
                     }
                   error :  null
                 """
                 repo = get_repo_or_error(repoid)
                 if not isinstance(userid, Optional):
                     if (has_superadmin_permission(apiuser) or
                             HasRepoPermissionAnyApi('repository.admin')(
                                 user=apiuser, repo_name=repo.repo_name)):
                         apiuser = get_user_or_error(userid)
                     else:
                         raise JSONRPCError('userid is not the same as your user')
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_read(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError('repository `%s` does not exist' % (repoid,))
                 message = Optional.extract(message)
                 status = Optional.extract(status)
                 if not message and not status:
                     raise JSONRPCError('message and status parameter missing')
                 if (status not in (st[0] for st in ChangesetStatus.STATUSES) and
                         status is not None):
                     raise JSONRPCError('unknown comment status`%s`' % status)
                 allowed_to_change_status = PullRequestModel().check_user_change_status(
                     pull_request, apiuser)
                 text = message
                 if status and allowed_to_change_status:
                     st_message = (('Status change %(transition_icon)s %(status)s')
                                   % {'transition_icon': '>',
                                      'status': ChangesetStatus.get_status_lbl(status)})
                     text = message or st_message
                 rc_config = SettingsModel().get_all_settings()
                 renderer = rc_config.get('rhodecode_markup_renderer', 'rst')
                 comment = ChangesetCommentsModel().create(
                     text=text,
                     repo=pull_request.target_repo.repo_id,
                     user=apiuser.user_id,
                     pull_request=pull_request.pull_request_id,
                     f_path=None,
                     line_no=None,
                     status_change=(ChangesetStatus.get_status_lbl(status)
                                    if status and allowed_to_change_status else None),
                     status_change_type=(status
                                         if status and allowed_to_change_status else None),
                     closing_pr=False,
                     renderer=renderer
                 )
                 if allowed_to_change_status and status:
                     ChangesetStatusModel().set_status(
                         pull_request.target_repo.repo_id,
                         status,
                         apiuser.user_id,
                         comment,
                         pull_request=pull_request.pull_request_id
                     )
                     Session().flush()
                 Session().commit()
                 data = {
                     'pull_request_id': pull_request.pull_request_id,
                     'comment_id': comment.comment_id,
                     'status': status
                 }
                 return data
             @jsonrpc_method()
             def create_pull_request(
                     request, apiuser, source_repo, target_repo, source_ref, target_ref,
                     title, description=Optional(''), reviewers=Optional(None)):
                 """
                 Creates a new pull request.
                 Accepts refs in the following formats:
                     * branch:<branch_name>:<sha>
                     * branch:<branch_name>
                     * bookmark:<bookmark_name>:<sha> (Mercurial only)
                     * bookmark:<bookmark_name> (Mercurial only)
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param source_repo: Set the source repository name.
                 :type source_repo: str
                 :param target_repo: Set the target repository name.
                 :type target_repo: str
                 :param source_ref: Set the source ref name.
                 :type source_ref: str
                 :param target_ref: Set the target ref name.
                 :type target_ref: str
                 :param title: Set the pull request title.
                 :type title: str
                 :param description: Set the pull request description.
                 :type description: Optional(str)
                 :param reviewers: Set the new pull request reviewers list.
                 :type reviewers: Optional(list)
                     Accepts username strings or objects of the format:
                     {
                         'username': 'nick', 'reasons': ['original author']
                     }
                 """
                 source = get_repo_or_error(source_repo)
                 target = get_repo_or_error(target_repo)
                 if not has_superadmin_permission(apiuser):
                     _perms = ('repository.admin', 'repository.write', 'repository.read',)
                     has_repo_permissions(apiuser, source_repo, source, _perms)
                 full_source_ref = resolve_ref_or_error(source_ref, source)
                 full_target_ref = resolve_ref_or_error(target_ref, target)
                 source_commit = get_commit_or_error(full_source_ref, source)
                 target_commit = get_commit_or_error(full_target_ref, target)
                 source_scm = source.scm_instance()
                 target_scm = target.scm_instance()
                 commit_ranges = target_scm.compare(
                     target_commit.raw_id, source_commit.raw_id, source_scm,
                     merge=True, pre_load=[])
                 ancestor = target_scm.get_common_ancestor(
                     target_commit.raw_id, source_commit.raw_id, source_scm)
                 if not commit_ranges:
                     raise JSONRPCError('no commits found')
                 if not ancestor:
                     raise JSONRPCError('no common ancestor found')
                 reviewer_objects = Optional.extract(reviewers) or []
                 if not isinstance(reviewer_objects, list):
                     raise JSONRPCError('reviewers should be specified as a list')
                 reviewers_reasons = []
                 for reviewer_object in reviewer_objects:
                     reviewer_reasons = []
                     if isinstance(reviewer_object, (basestring, int)):
                         reviewer_username = reviewer_object
                     else:
                         reviewer_username = reviewer_object['username']
                         reviewer_reasons = reviewer_object.get('reasons', [])
                     user = get_user_or_error(reviewer_username)
                     reviewers_reasons.append((user.user_id, reviewer_reasons))
                 pull_request_model = PullRequestModel()
                 pull_request = pull_request_model.create(
                     created_by=apiuser.user_id,
                     source_repo=source_repo,
                     source_ref=full_source_ref,
                     target_repo=target_repo,
                     target_ref=full_target_ref,
                     revisions=reversed(
                         [commit.raw_id for commit in reversed(commit_ranges)]),
                     reviewers=reviewers_reasons,
                     title=title,
                     description=Optional.extract(description)
                 )
                 Session().commit()
                 data = {
                     'msg': 'Created new pull request `{}`'.format(title),
                     'pull_request_id': pull_request.pull_request_id,
                 }
                 return data
             @jsonrpc_method()
             def update_pull_request(
                     request, apiuser, repoid, pullrequestid, title=Optional(''),
                     description=Optional(''), reviewers=Optional(None),
                     update_commits=Optional(None), close_pull_request=Optional(None)):
                 """
                 Updates a pull request.
                 :param apiuser: This is filled automatically from the |authtoken|.
                 :type apiuser: AuthUser
                 :param repoid: The repository name or repository ID.
                 :type repoid: str or int
                 :param pullrequestid: The pull request ID.
                 :type pullrequestid: int
                 :param title: Set the pull request title.
                 :type title: str
                 :param description: Update pull request description.
                 :type description: Optional(str)
                 :param reviewers: Update pull request reviewers list with new value.
                 :type reviewers: Optional(list)
                 :param update_commits: Trigger update of commits for this pull request
                 :type: update_commits: Optional(bool)
                 :param close_pull_request: Close this pull request with rejected state
                 :type: close_pull_request: Optional(bool)
                 Example output:
                 .. code-block:: bash
                   id : <id_given_in_input>
                   result :
                     {
                         "msg": "Updated pull request `63`",
                         "pull_request": <pull_request_object>,
                         "updated_reviewers": {
                           "added": [
                             "username"
                           ],
                           "removed": []
                         },
                         "updated_commits": {
                           "added": [
                             "<sha1_hash>"
                           ],
                           "common": [
                             "<sha1_hash>",
                             "<sha1_hash>",
                           ],
                           "removed": []
                         }
                     }
                   error :  null
                 """
                 repo = get_repo_or_error(repoid)
                 pull_request = get_pull_request_or_error(pullrequestid)
                 if not PullRequestModel().check_user_update(
                         pull_request, apiuser, api=True):
                     raise JSONRPCError(
                         'pull request `%s` update failed, no permission to update.' % (
                             pullrequestid,))
                 if pull_request.is_closed():
                     raise JSONRPCError(
                         'pull request `%s` update failed, pull request is closed' % (
                             pullrequestid,))
                 reviewer_objects = Optional.extract(reviewers) or []
                 if not isinstance(reviewer_objects, list):
                     raise JSONRPCError('reviewers should be specified as a list')
                 reviewers_reasons = []
                 reviewer_ids = set()
                 for reviewer_object in reviewer_objects:
                     reviewer_reasons = []
                     if isinstance(reviewer_object, (int, basestring)):
                         reviewer_username = reviewer_object
                     else:
                         reviewer_username = reviewer_object['username']
                         reviewer_reasons = reviewer_object.get('reasons', [])
                     user = get_user_or_error(reviewer_username)
                     reviewer_ids.add(user.user_id)
                     reviewers_reasons.append((user.user_id, reviewer_reasons))
                 title = Optional.extract(title)
                 description = Optional.extract(description)
                 if title or description:
                     PullRequestModel().edit(
                         pull_request, title or pull_request.title,
                         description or pull_request.description)
                     Session().commit()
                 commit_changes = {"added": [], "common": [], "removed": []}
                 if str2bool(Optional.extract(update_commits)):
                     if PullRequestModel().has_valid_update_type(pull_request):
                         _version, _commit_changes = PullRequestModel().update_commits(
                             pull_request)
                         commit_changes = _commit_changes or commit_changes
                     Session().commit()
                 reviewers_changes = {"added": [], "removed": []}
                 if reviewer_ids:
                     added_reviewers, removed_reviewers = \
                         PullRequestModel().update_reviewers(pull_request, reviewers_reasons)
                     reviewers_changes['added'] = sorted(
                         [get_user_or_error(n).username for n in added_reviewers])
                     reviewers_changes['removed'] = sorted(
                         [get_user_or_error(n).username for n in removed_reviewers])
                     Session().commit()
                 if str2bool(Optional.extract(close_pull_request)):
                     PullRequestModel().close_pull_request_with_comment(
                         pull_request, apiuser, repo)
                     Session().commit()
                 data = {
                     'msg': 'Updated pull request `{}`'.format(
                         pull_request.pull_request_id),
                     'pull_request': pull_request.get_api_data(),
                     'updated_commits': commit_changes,
                     'updated_reviewers': reviewers_changes
                 }
                 return data

rhodecode/lib/middleware/simplevcs.py

0 +3 0

             # -*- coding: utf-8 -*-
             # Copyright (C) 2014-2016  RhodeCode GmbH
             #
             # This program is free software: you can redistribute it and/or modify
             # it under the terms of the GNU Affero General Public License, version 3
             # (only), as published by the Free Software Foundation.
             #
             # This program is distributed in the hope that it will be useful,
             # but WITHOUT ANY WARRANTY; without even the implied warranty of
             # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
             # GNU General Public License for more details.
             #
             # You should have received a copy of the GNU Affero General Public License
             # along with this program.  If not, see <http://www.gnu.org/licenses/>.
             #
             # This program is dual-licensed. If you wish to learn more about the
             # RhodeCode Enterprise Edition, including its added features, Support services,
             # and proprietary license terms, please see https://rhodecode.com/licenses/
             """
             SimpleVCS middleware for handling protocol request (push/clone etc.)
             It's implemented with basic auth function
             """
             import os
             import logging
             import importlib
             import re
             from functools import wraps
             from paste.httpheaders import REMOTE_USER, AUTH_TYPE
             from webob.exc import (
                 HTTPNotFound, HTTPForbidden, HTTPNotAcceptable, HTTPInternalServerError)
             import rhodecode
             from rhodecode.authentication.base import authenticate, VCS_TYPE
             from rhodecode.lib.auth import AuthUser, HasPermissionAnyMiddleware
             from rhodecode.lib.base import BasicAuth, get_ip_addr, vcs_operation_context
             from rhodecode.lib.exceptions import (
                 HTTPLockedRC, HTTPRequirementError, UserCreationError,
                 NotAllowedToCreateUserError)
             from rhodecode.lib.hooks_daemon import prepare_callback_daemon
             from rhodecode.lib.middleware import appenlight
             from rhodecode.lib.middleware.utils import scm_app
             from rhodecode.lib.utils import (
                 is_valid_repo, get_rhodecode_realm, get_rhodecode_base_path)
             from rhodecode.lib.utils2 import safe_str, fix_PATH, str2bool
             from rhodecode.lib.vcs.conf import settings as vcs_settings
             from rhodecode.lib.vcs.backends import base
             from rhodecode.model import meta
             from rhodecode.model.db import User, Repository
             from rhodecode.model.scm import ScmModel
             log = logging.getLogger(__name__)
             def initialize_generator(factory):
                 """
                 Initializes the returned generator by draining its first element.
                 This can be used to give a generator an initializer, which is the code
                 up to the first yield statement. This decorator enforces that the first
                 produced element has the value ``"__init__"`` to make its special
                 purpose very explicit in the using code.
                 """
                 @wraps(factory)
                 def wrapper(*args, **kwargs):
                     gen = factory(*args, **kwargs)
                     try:
                         init = gen.next()
                     except StopIteration:
                         raise ValueError('Generator must yield at least one element.')
                     if init != "__init__":
                         raise ValueError('First yielded element must be "__init__".')
                     return gen
                 return wrapper
             class SimpleVCS(object):
                 """Common functionality for SCM HTTP handlers."""
                 SCM = 'unknown'
                 acl_repo_name = None
                 url_repo_name = None
                 vcs_repo_name = None
                 def __init__(self, application, config, registry):
                     self.registry = registry
                     self.application = application
                     self.config = config
                     # re-populated by specialized middleware
                     self.repo_vcs_config = base.Config()
                     # base path of repo locations
                     self.basepath = get_rhodecode_base_path()
                     # authenticate this VCS request using authfunc
                     auth_ret_code_detection = \
                         str2bool(self.config.get('auth_ret_code_detection', False))
                     self.authenticate = BasicAuth(
                         '', authenticate, registry, config.get('auth_ret_code'),
                         auth_ret_code_detection)
                     self.ip_addr = '0.0.0.0'
                 def set_repo_names(self, environ):
                     """
                     This will populate the attributes acl_repo_name, url_repo_name,
                     vcs_repo_name and pr_id on the current instance.
                     """
+                    # TODO: martinb: Unify generation/suffix of clone url. It is currently
+                    #       used here in the regex, in PullRequest in get_api_data() and
+                    #       indirectly in routing configuration.
                     # TODO: martinb: Move to class or module scope.
                     # TODO: martinb: Check if we have to use re.UNICODE.
                     # TODO: martinb: Check which chars are allowed for repo/group names.
                     #       These chars are excluded: '`?=[]\;\'"<>,/~!@#$%^&*()+{}|: '
                     #       Code from: rhodecode/lib/utils.py:repo_name_slug()
                     pr_regex = re.compile(
                         '(?P<base_name>(?:[\w-]+)(?:/[\w-]+)*)/'    # repo groups
                         '(?P<repo_name>[\w-]+)'                     # target repo name
                         '/pull-request/(?P<pr_id>\d+)/repository')  # pr suffix
                     # Get url repo name from environment.
                     self.url_repo_name = self._get_repository_name(environ)
                     # Check if this is a request to a shadow repository. In case of a
                     # shadow repo set vcs_repo_name to the file system path pointing to the
                     # shadow repo. And set acl_repo_name to the pull request target repo
                     # because we use the target repo for permission checks. Otherwise all
                     # names are equal.
                     match = pr_regex.match(self.url_repo_name)
                     if match:
                         # Get pull request instance.
                         match_dict = match.groupdict()
                         pr_id = match_dict['pr_id']
                         pull_request = PullRequest.get(pr_id)
                         # Get file system path to shadow repository.
                         workspace_id = PullRequestModel()._workspace_id(pull_request)
                         target_vcs = pull_request.target_repo.scm_instance()
                         vcs_repo_name = target_vcs._get_shadow_repository_path(
                             workspace_id)
                         # Store names for later usage.
                         self.pr_id = pr_id
                         self.vcs_repo_name = vcs_repo_name
                         self.acl_repo_name = pull_request.target_repo.repo_name
                     else:
                         # All names are equal for normal (non shadow) repositories.
                         self.acl_repo_name = self.url_repo_name
                         self.vcs_repo_name = self.url_repo_name
                         self.pr_id = None
                 @property
                 def repo_name(self):
                     # TODO: johbo: Remove, switch to correct repo name attribute
                     return self.acl_repo_name
                 @property
                 def scm_app(self):
                     custom_implementation = self.config.get('vcs.scm_app_implementation')
                     if custom_implementation and custom_implementation != 'pyro4':
                         log.info(
                             "Using custom implementation of scm_app: %s",
                             custom_implementation)
                         scm_app_impl = importlib.import_module(custom_implementation)
                     else:
                         scm_app_impl = scm_app
                     return scm_app_impl
                 def _get_by_id(self, repo_name):
                     """
                     Gets a special pattern _<ID> from clone url and tries to replace it
                     with a repository_name for support of _<ID> non changeable urls
                     """
                     data = repo_name.split('/')
                     if len(data) >= 2:
                         from rhodecode.model.repo import RepoModel
                         by_id_match = RepoModel().get_repo_by_id(repo_name)
                         if by_id_match:
                             data[1] = by_id_match.repo_name
                     return safe_str('/'.join(data))
                 def _invalidate_cache(self, repo_name):
                     """
                     Set's cache for this repository for invalidation on next access
                     :param repo_name: full repo name, also a cache key
                     """
                     ScmModel().mark_for_invalidation(repo_name)
                 def is_valid_and_existing_repo(self, repo_name, base_path, scm_type):
                     db_repo = Repository.get_by_repo_name(repo_name)
                     if not db_repo:
                         log.debug('Repository `%s` not found inside the database.',
                                   repo_name)
                         return False
                     if db_repo.repo_type != scm_type:
                         log.warning(
                             'Repository `%s` have incorrect scm_type, expected %s got %s',
                             repo_name, db_repo.repo_type, scm_type)
                         return False
                     return is_valid_repo(repo_name, base_path, expect_scm=scm_type)
                 def valid_and_active_user(self, user):
                     """
                     Checks if that user is not empty, and if it's actually object it checks
                     if he's active.
                     :param user: user object or None
                     :return: boolean
                     """
                     if user is None:
                         return False
                     elif user.active:
                         return True
                     return False
                 def _check_permission(self, action, user, repo_name, ip_addr=None):
                     """
                     Checks permissions using action (push/pull) user and repository
                     name
                     :param action: push or pull action
                     :param user: user instance
                     :param repo_name: repository name
                     """
                     # check IP
                     inherit = user.inherit_default_permissions
                     ip_allowed = AuthUser.check_ip_allowed(user.user_id, ip_addr,
                                                            inherit_from_default=inherit)
                     if ip_allowed:
                         log.info('Access for IP:%s allowed', ip_addr)
                     else:
                         return False
                     if action == 'push':
                         if not HasPermissionAnyMiddleware('repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     else:
                         # any other action need at least read permission
                         if not HasPermissionAnyMiddleware('repository.read',
                                                           'repository.write',
                                                           'repository.admin')(user,
                                                                               repo_name):
                             return False
                     return True
                 def _check_ssl(self, environ, start_response):
                     """
                     Checks the SSL check flag and returns False if SSL is not present
                     and required True otherwise
                     """
                     org_proto = environ['wsgi._org_proto']
                     # check if we have SSL required  ! if not it's a bad request !
                     require_ssl = str2bool(self.repo_vcs_config.get('web', 'push_ssl'))
                     if require_ssl and org_proto == 'http':
                         log.debug('proto is %s and SSL is required BAD REQUEST !',
                                   org_proto)
                         return False
                     return True
                 def __call__(self, environ, start_response):
                     try:
                         return self._handle_request(environ, start_response)
                     except Exception:
                         log.exception("Exception while handling request")
                         appenlight.track_exception(environ)
                         return HTTPInternalServerError()(environ, start_response)
                     finally:
                         meta.Session.remove()
                 def _handle_request(self, environ, start_response):
                     if not self._check_ssl(environ, start_response):
                         reason = ('SSL required, while RhodeCode was unable '
                                   'to detect this as SSL request')
                         log.debug('User not allowed to proceed, %s', reason)
                         return HTTPNotAcceptable(reason)(environ, start_response)
                     if not self.repo_name:
                         log.warning('Repository name is empty: %s', self.repo_name)
                         # failed to get repo name, we fail now
                         return HTTPNotFound()(environ, start_response)
                     log.debug('Extracted repo name is %s', self.repo_name)
                     ip_addr = get_ip_addr(environ)
                     username = None
                     # skip passing error to error controller
                     environ['pylons.status_code_redirect'] = True
                     # ======================================================================
                     # GET ACTION PULL or PUSH
                     # ======================================================================
                     action = self._get_action(environ)
                     # ======================================================================
                     # Check if this is a request to a shadow repository of a pull request.
                     # In this case only pull action is allowed.
                     # ======================================================================
                     if self.pr_id is not None and action != 'pull':
                         reason = 'Only pull action is allowed for shadow repositories.'
                         log.debug('User not allowed to proceed, %s', reason)
                         return HTTPNotAcceptable(reason)(environ, start_response)
                     # ======================================================================
                     # CHECK ANONYMOUS PERMISSION
                     # ======================================================================
                     if action in ['pull', 'push']:
                         anonymous_user = User.get_default_user()
                         username = anonymous_user.username
                         if anonymous_user.active:
                             # ONLY check permissions if the user is activated
                             anonymous_perm = self._check_permission(
                                 action, anonymous_user, self.repo_name, ip_addr)
                         else:
                             anonymous_perm = False
                         if not anonymous_user.active or not anonymous_perm:
                             if not anonymous_user.active:
                                 log.debug('Anonymous access is disabled, running '
                                           'authentication')
                             if not anonymous_perm:
                                 log.debug('Not enough credentials to access this '
                                           'repository as anonymous user')
                             username = None
                             # ==============================================================
                             # DEFAULT PERM FAILED OR ANONYMOUS ACCESS IS DISABLED SO WE
                             # NEED TO AUTHENTICATE AND ASK FOR AUTH USER PERMISSIONS
                             # ==============================================================
                             # try to auth based on environ, container auth methods
                             log.debug('Running PRE-AUTH for container based authentication')
                             pre_auth = authenticate(
                                 '', '', environ, VCS_TYPE, registry=self.registry)
                             if pre_auth and pre_auth.get('username'):
                                 username = pre_auth['username']
                             log.debug('PRE-AUTH got %s as username', username)
                             # If not authenticated by the container, running basic auth
                             if not username:
                                 self.authenticate.realm = get_rhodecode_realm()
                                 try:
                                     result = self.authenticate(environ)
                                 except (UserCreationError, NotAllowedToCreateUserError) as e:
                                     log.error(e)
                                     reason = safe_str(e)
                                     return HTTPNotAcceptable(reason)(environ, start_response)
                                 if isinstance(result, str):
                                     AUTH_TYPE.update(environ, 'basic')
                                     REMOTE_USER.update(environ, result)
                                     username = result
                                 else:
                                     return result.wsgi_application(environ, start_response)
                             # ==============================================================
                             # CHECK PERMISSIONS FOR THIS REQUEST USING GIVEN USERNAME
                             # ==============================================================
                             user = User.get_by_username(username)
                             if not self.valid_and_active_user(user):
                                 return HTTPForbidden()(environ, start_response)
                             username = user.username
                             user.update_lastactivity()
                             meta.Session().commit()
                             # check user attributes for password change flag
                             user_obj = user
                             if user_obj and user_obj.username != User.DEFAULT_USER and \
                                     user_obj.user_data.get('force_password_change'):
                                 reason = 'password change required'
                                 log.debug('User not allowed to authenticate, %s', reason)
                                 return HTTPNotAcceptable(reason)(environ, start_response)
                             # check permissions for this repository
                             perm = self._check_permission(
                                 action, user, self.repo_name, ip_addr)
                             if not perm:
                                 return HTTPForbidden()(environ, start_response)
                     # extras are injected into UI object and later available
                     # in hooks executed by rhodecode
                     check_locking = _should_check_locking(environ.get('QUERY_STRING'))
                     extras = vcs_operation_context(
                         environ, repo_name=self.repo_name, username=username,
                         action=action, scm=self.SCM,
                         check_locking=check_locking)
                     # ======================================================================
                     # REQUEST HANDLING
                     # ======================================================================
                     str_repo_name = safe_str(self.repo_name)
                     repo_path = os.path.join(
                         safe_str(self.basepath), safe_str(self.vcs_repo_name))
                     log.debug('Repository path is %s', repo_path)
                     fix_PATH()
                     log.info(
                         '%s action on %s repo "%s" by "%s" from %s',
                         action, self.SCM, str_repo_name, safe_str(username), ip_addr)
                     return self._generate_vcs_response(
                         environ, start_response, repo_path, self.url_repo_name, extras, action)
                 @initialize_generator
                 def _generate_vcs_response(
                         self, environ, start_response, repo_path, repo_name, extras,
                         action):
                     """
                     Returns a generator for the response content.
                     This method is implemented as a generator, so that it can trigger
                     the cache validation after all content sent back to the client. It
                     also handles the locking exceptions which will be triggered when
                     the first chunk is produced by the underlying WSGI application.
                     """
                     callback_daemon, extras = self._prepare_callback_daemon(extras)
                     config = self._create_config(extras, self.acl_repo_name)
                     log.debug('HOOKS extras is %s', extras)
                     app = self._create_wsgi_app(repo_path, repo_name, config)
                     try:
                         with callback_daemon:
                             try:
                                 response = app(environ, start_response)
                             finally:
                                 # This statement works together with the decorator
                                 # "initialize_generator" above. The decorator ensures that
                                 # we hit the first yield statement before the generator is
                                 # returned back to the WSGI server. This is needed to
                                 # ensure that the call to "app" above triggers the
                                 # needed callback to "start_response" before the
                                 # generator is actually used.
                                 yield "__init__"
                             for chunk in response:
                                 yield chunk
                     except Exception as exc:
                         # TODO: johbo: Improve "translating" back the exception.
                         if getattr(exc, '_vcs_kind', None) == 'repo_locked':
                             exc = HTTPLockedRC(*exc.args)
                             _code = rhodecode.CONFIG.get('lock_ret_code')
                             log.debug('Repository LOCKED ret code %s!', (_code,))
                         elif getattr(exc, '_vcs_kind', None) == 'requirement':
                             log.debug(
                                 'Repository requires features unknown to this Mercurial')
                             exc = HTTPRequirementError(*exc.args)
                         else:
                             raise
                         for chunk in exc(environ, start_response):
                             yield chunk
                     finally:
                         # invalidate cache on push
                         try:
                             if action == 'push':
                                 self._invalidate_cache(repo_name)
                         finally:
                             meta.Session.remove()
                 def _get_repository_name(self, environ):
                     """Get repository name out of the environmnent
                     :param environ: WSGI environment
                     """
                     raise NotImplementedError()
                 def _get_action(self, environ):
                     """Map request commands into a pull or push command.
                     :param environ: WSGI environment
                     """
                     raise NotImplementedError()
                 def _create_wsgi_app(self, repo_path, repo_name, config):
                     """Return the WSGI app that will finally handle the request."""
                     raise NotImplementedError()
                 def _create_config(self, extras, repo_name):
                     """Create a Pyro safe config representation."""
                     raise NotImplementedError()
                 def _prepare_callback_daemon(self, extras):
                     return prepare_callback_daemon(
                         extras, protocol=vcs_settings.HOOKS_PROTOCOL,
                         use_direct_calls=vcs_settings.HOOKS_DIRECT_CALLS)
             def _should_check_locking(query_string):
                 # this is kind of hacky, but due to how mercurial handles client-server
                 # server see all operation on commit; bookmarks, phases and
                 # obsolescence marker in different transaction, we don't want to check
                 # locking on those
                 return query_string not in ['cmd=listkeys']

rhodecode/model/db.py

0 0 0

	1	NO CONTENT: modified file			NO CONTENT: modified file
The requested commit or file is too big and content was truncated. Show full diff

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages